Beta

Slashdot: News for Nerds

×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Tool Reveals iPad and iPhone User Locations

timothy posted about a year ago | from the cat's-away-mice-will-play dept.

Wireless Networking 36

mask.of.sanity writes "A researcher has found that Apple user locations can be potentially determined by tapping into Apple Maps and he has created a Python tool to make the process easier. iSniff GPS accesses Apple's database of wireless access points, which is collected by iPhones and iPads that have GPS and Wi-Fi location services enabled. Apple uses this crowd-sourced data to run its location services; however, the location database is not meant to be public. You can download the tool via Giuthub."

cancel ×

36 comments

GUITHUB???? (0)

Anonymous Coward | about a year ago | (#43674153)

GUITHUB????

Re:GUITHUB???? (5, Funny)

Anonymous Coward | about a year ago | (#43674185)

No, Giuthub. Learn to read, asshole.

Do NOT click on that link (0)

Anonymous Coward | about a year ago | (#43679511)

No, Giuthub. Learn to read, asshole.

I hovered over the "download the tool via Giuthub" link and noticed it is pointing to some site called "github" instead of Giuthub, so obviously it is a trap. DO NOT CLICK ON IT!

Re:GUITHUB???? (0)

Anonymous Coward | about a year ago | (#43681253)

No, GUIDhub.

Ouch! (5, Funny)

hcs_$reboot (1536101) | about a year ago | (#43674197)

The divorce rate will increase dramatically if Apple doesn't fix this ...

Re:Ouch! (1)

fekmist (2857907) | about a year ago | (#43674207)

good !

Re:Ouch! (1)

Anonymous Coward | about a year ago | (#43674231)

No one would dare visit that "Giuthub" website anyhow!

Protect yourself (4, Informative)

Thornburg (264444) | about a year ago | (#43674247)

And this is why your iDevice should never be set to automatically join wifi networks.

Actually, NO device should be configured to automatically join wifi networks.

(For those who didn't read the docs that go with the software, this relies upon running an access point with no DHCP, which is what forces the iDevice to send ARPs for the last DHCP server it used).

Also, this means that if you want to "hide" your home network, don't run DHCP on your WiFi router, use another device.

Re:Protect yourself (3, Interesting)

beelsebob (529313) | about a year ago | (#43674499)

Joining, and discovering are not the same thing. You don't need to join a network for your phone to register it as near your location.

Re:Protect yourself (1)

StripedCow (776465) | about a year ago | (#43674819)

Thus, a better solution would be that the device changes its ID every once in a while.

Might be a good idea for nonportable devices too, because that would screw up Google's wifi data harvesting practices.

Re:Protect yourself (4, Interesting)

Thornburg (264444) | about a year ago | (#43674899)

Joining, and discovering are not the same thing. You don't need to join a network for your phone to register it as near your location.

Absolutely true. But your phone won't give away the MAC address of your previous network unless it's trying to join the fake wifi network. Unless I'm greatly misunderstanding what I read.

From GitHub:

To solicit ARPs from iOS devices, set up an access point with DHCP disabled (e.g. using airbase-ng) and configure your sniffing interface to the same channel.

Once associated, iOS devices will send up to three ARPs destined for the MAC address of the DHCP server on previously joined networks. On typical home WiFi routers, the DHCP server MAC address is the same as the WiFi interface MAC address, which can be used for accurate geolocation. On larger corporate WiFi networks, the MAC of the DHCP server may be different and thus cannot be used for geolocation.

I'm pretty sure that for a device to be associated, it has to be attempting to join the network. I could be wrong, I'm not a WiFi engineer. Please correct me if I'm wrong about that.

Re:Protect yourself (3, Funny)

Smurf (7981) | about a year ago | (#43678873)

I'm pretty sure that for a device to be associated, it has to be attempting to join the network. I could be wrong, I'm not a WiFi engineer. Please correct me if I'm wrong about that.

No, I'm pretty sure that you are absolutely right about that: You are not a WiFi engineer.

Re:Protect yourself (0)

Anonymous Coward | about a year ago | (#43681435)

That was too easy.

Re:Protect yourself (1)

neorush (1103917) | about a year ago | (#43674543)

Agreed, anyone who has there device configured like this doesn't keep up with Doctor Who [wikipedia.org] .

Re: Protect yourself (1)

Diamon (13013) | about a year ago | (#43676355)

Luckily, ATMOS doesn't suffer from such security flaws.

Re:Protect yourself (1)

antdude (79039) | about a year ago | (#43678581)

For iCloud and tracking the Apple devices, isn't this connecting to wireless networks required?

Can be used to find where people live.... (3, Insightful)

Xenious (24845) | about a year ago | (#43674403)

Hmmm, "it can be used to find where people live", so can a phone book. ;) A lot of the time summaries take a very specific issue (quoting from Thornburg) "this relies upon running an access point with no DHCP, which is what forces the iDevice to send ARPs for the last DHCP server it used" and escalating it to a more dramatic issue. Sometimes with a very simple partial solution (again from Thornburg) "NO device should be configured to automatically join wifi networks," and a general attack with the open source vs closed or apple vs anyone fighting. Grated the dry description isn't as eye catching but its much more logical.

For the record yes I have an iPhone and no I am not setup to automatically join new wifi networks.
-Xen

Re:Can be used to find where people live.... (1)

Windwraith (932426) | about a year ago | (#43674781)

Well...it's not to be used to find where people lives, but if it keeps wifi history, then it means it can find where people is *right now*
While it can have legit purposes, this could be bad in hands of stalkers, thieves and other criminals, specially when the potential victims have no clue. Also other less criminal but very potentially annoying/conflictive uses if this becomes common knowledge.

Re:Can be used to find where people live.... (1)

tlhIngan (30335) | about a year ago | (#43675857)

Well...it's not to be used to find where people lives, but if it keeps wifi history, then it means it can find where people is *right now*
While it can have legit purposes, this could be bad in hands of stalkers, thieves and other criminals, specially when the potential victims have no clue. Also other less criminal but very potentially annoying/conflictive uses if this becomes common knowledge.

Well, given it needs an access point with the same name, I'd say "right now" would be within the range of the access point. Which means they're within about 100 feet or so.

Also, it requires having a network with the same name, so you'll need to make a Linksys network, a Netgear network, etc in order to find one that someone is using.

Though, modern wifi routers people use for internet (i.e., ISP provided) usually use the last 3 octets of the MAC as part of the SSID unless changed. So things aren't as easy. Hell, I haven't seen a Linksys SSID in a long while.

Mini Ekskavatör (-1, Offtopic)

tahsincan (2919187) | about a year ago | (#43674417)

Mini Ekskavatör Mini Ekskavatör [tahsincan.com.tr] Mü Lazm BizimLe Çalmak stermisiniz Makina Parkmz 4 adet Bobcat 2 adet Mini Ekskavatör [tahsincan.com.tr] Makinelerimiz 1.6 tonluk Mini Ekskavatör 2.6 Tonluk Mini Ekskavatör [tahsincan.com.tr] Kabinsiz Kullanmlarda 1.5 metre yükseklikden girebilen1 metre genilikden girebilen mini ekskavatör mevcut siz müterilerimiz bizi tercih etme sebebiniz ne olabilir tabiki Çalmamzn ve iimizi Temiz Yapmamz Sizlere Güven Verir Can Hafriyat Tahsin Can

Illegal? (0)

Anonymous Coward | about a year ago | (#43674437)

Taping into a system that is not ment to be public is illegal, right?

old? (1)

Anonymous Coward | about a year ago | (#43674447)

As seen in the picture in TFA, there was a (lightning?) talk about this on the 29c3, this was over 5 months ago If they haven't fixed it since, why should the fix it now?

Presented at Blackhat USA July 2012, code publish (2)

fuzzel (18438) | about a year ago | (#43674475)

From the github page: "Written by @hubert3 / . Presented at Blackhat USA July 2012, code published on Github 2012-08-31"

Slashdot, News of Last year, today! ;)

But yes, it is a rather cool hack that still works....

As usual, misleading (3, Insightful)

gnasher719 (869701) | about a year ago | (#43674481)

iOS devices (and many other devices) use the known locations of wireless access points to determine their own location. (They check which wireless access points they can see, with which signal strength, and compare the results with a database of wireless access locations). What this guy found was that he could access the same database. So he can find locations of wireless access locations, which are _not_ iPads or iPhones, and there is no reason to assume that they would be owned by Mac or iOS device owners.

That said, the information should not be available to anything but the operating system on a device.

Re:As usual, misleading (1)

netsentry (2733393) | about a year ago | (#43674771)

"The tool works by accessing Apple's database of wireless access points, which is collected by iPhones and iPads that have GPS and wifi location services enabled."

Although other devices may be accessing these points as well, these locations were reported by Apple devices. Once the MAC is resolved for that point, the process continues by isolating the devices using that router using a service such as Google's location services. Google locked down security on this service for this exact reason http://news.cnet.com/8301-31921_3-20074571-281/google-curbs-web-map-exposing-phone-locations/ [cnet.com] .

Read deeper into the article before judging.

Re:As usual, misleading (1)

Anonymous Coward | about a year ago | (#43675703)

The point you might have missed, is that the iOS Devices send ARP requests to the MAC addresses of the last three networks' DHCP servers. This gives you a fair idea of where the device was used.

Apple already fixed this (1, Funny)

jafiwam (310805) | about a year ago | (#43674487)

The "Wi-fi never works again" bug^h^h^h feature is the fix.

Just update you iDevice, or get it warm, or get it cool, or bump it, or don't update it and your Wi-FI might drop off WiFi forever. Fixing the problem! Apple, it just works!

Now you can find that troll. (1)

FuzzyDustBall (751425) | about a year ago | (#43674731)

Now you can find that troll and punch him/her in the face... All you have to do is hack their computer, sniff the traffic until you see something from the WiFi router, use this database to find the approximate location of the user then knock on every door withing a 100 meter radius and punch the people that answer... I'm sure one of them will be the troll.

Wait a minute (4, Funny)

93 Escort Wagon (326346) | about a year ago | (#43674809)

There's a glaring flaw in the summary. In order for this tool to work, the iPad owner has to have used Apple Maps.

Who actually uses Apple Maps? Haven't most of those people already been eaten by kangaroos in the desert or driven into canals?

Re:Wait a minute (1)

Ryanrule (1657199) | about a year ago | (#43675371)

Apple maps is great fun on the ipad. Pull up a big city and its like being in the future.

Re:Wait a minute (1)

_xeno_ (155264) | about a year ago | (#43676359)

Apple maps is great fun on the ipad. Pull up a big city and its like being in the future.

A dystopian future full of broken buildings, weird piles of wood and leaves that may have been trees, and lumps in the road where cars used to be.

Whatever they're using to automatically generate 3D buildings is kind of cool in theory - it just produces hilariously awful results.

Re:Wait a minute (2)

Bigby (659157) | about a year ago | (#43676595)

So it is like SimCity, but it works

Re:Wait a minute (1)

Idbar (1034346) | about a year ago | (#43675575)

Haven't most of those people already been eaten by kangaroos in the desert or driven into canals?

I guess it will make an excellent forensic application then! They will be able to find those poor missing people.

tool? (1)

pbjones (315127) | about a year ago | (#43680697)

the only tool here is the person who goes out of way to set up a Linux box and WiFi point to track people. If you consider that the average WiFi has to be reasonably close to the target, then you must already have some general idea about where the target is, a lot of trouble for almost nothing.

Maynard (1)

bmxer4130 (2921457) | about a year ago | (#43703703)

I read this as '''''[The Band] Tool
Check for New Comments
Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Create a Slashdot Account

Loading...